A Texas parent who reported a school district security breach involving sensitive student records spent the next two years facing federal charges and trying to get his laptop back Back in August 2009, DataBreaches.net reported that a parent had his work and personal computers seized by the FBI after he reported a security breach to his…
Category: Of Note
Breaches have consequences: Watchdog penalizes Hyundai Capital after data leak
A follow-up to the Hyundai Capital breach first disclosed in April. At the time, Hyundai reported that approximately 420,000 of its 1.8 million customers had their names, resident registration numbers, mobile phone numbers and email addresses compromised by hackers. Now Yonhap News reports: South Korea’s financial watchdog on Thursday decided to issue an institutional warning…
HHS submits its annual report to Congress on breaches
The U.S. Department of Health and Human Services Office for Civil Rights has submitted its mandated report to Congress on breach reports it has received. The report covers incidents reported between September 23, 2009 (the date the breach notification requirements became effective), and December 31, 2010. Here are some of the highlights of the report:…
North Carolina psychologist settles state charges for dumping patients’ records, agrees to pay $40,000
The following press release from North Carolina Attorney General Roy Cooper is a follow-up to a breach previously covered on PHIprivacy.net: Dr. Ervin Batchelor of the Carolina Center for Development and Rehabilitation in Charlotte has paid $40,000 for illegally dumping files containing patients’ financial and medical information, Attorney General Roy Cooper announced Wednesday. “Any business you entrust with your information has a…
California Strengthens its Data Breach Notification Law
Joseph Lazzarotti writes: As we suspected, California’s current governor, Edmund G. “Jerry” Brown, Jr. (D), signed into law S.B. 24, which adds some additional protections to the state’s current data breach notification requirements. The champion of this law and its recent enhancements, State Sen. Joe Simitian (D-Palo Alto), has finally succeeded after a number of prior attempts to pass this measure…
Kr: Report on hacking incidents to be required of companies
All listed and financial companies must report a security breach, with the scope of disclosure on major management issues including M&As being expanded to hacking incidents. The Knowledge Economy Ministry said Thursday that as early as 2014, companies must inform whether they have been hacked and how they can cope with such incidents on either…